skolyjh.cz
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:99:22:d6:9d:27:b0:29:b6:10:55:3d:3f:07:2e:12:d0:45 was issued on by Let's Encrypt.
With 4 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=skolyjh.cz
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:99:22:d6:9d:27:b0:29:b6:10:55:3d:3f:07:2e:12:d0:45Serial Number (int): 313446368025051464341386964990902553202757
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: bb:e1:64:0a:1e:e7:d7:66:b2:c9:c8:8c:1f:cd:64:74:67:f3:53:5d
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): af:25:30:1d:ea:24:a9:c5:14:0d:0e:99:a2:33:34:9f:57:71:8f:8a
Fingerprint (sha256): d3:44:c8:a5:e7:2c:6f:ee:ee:3c:8d:72:c4:a4:c4:d6:38:0a:ba:84:eb:ae:82:7e:97:f9:f2:54:77:16:f0:3d
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate skolyjh.cz
4
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for skolyjh.cz
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
oaeldo.cz
skolyjh.cz
www.oaeldo.cz
www.skolyjh.cz
skolyjh.cz
www.oaeldo.cz
www.skolyjh.cz
Other certificates including the domain name skolyjh.cz
(limited to 100 certificates)
Certificate
The complete raw certificate details for skolyjh.cz in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGdTCCBV2gAwIBAgISA5ki1p0nsCm2EFU9PwcuEtBFMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0yMDAzMDMxNTEwMzdaFw0y MDA2MDExNTEwMzdaMBUxEzARBgNVBAMTCnNrb2x5amguY3owggIiMA0GCSqGSIb3 DQEBAQUAA4ICDwAwggIKAoICAQDA3vN9elXxDpZzVCFjkltJmuc8m/RAwK8hGqiN dGs4T0PTW4KJGxPkBk0GeOB4V0cdlNLqUutrg9Aj6klAWWtTvpI5LaRJQYcbSGd0 /gpBmZRBkwjV8dRrGm1fmXlpcQo25KYwKblclWVyzG+WyoGoEhnr6K5YLr1iOqsz s2CbypmwObhdFW1X1jgy6kqJJbM9R1TNk2o1n7XSIGR37UrTADulOK2D0vWhMRc/ 5F0NlErPVeiJ3mZ/4+XsixDDLGPdx2RN19crb5Z8wdx4EsgGVgfnP51UmXs8KWd5 rlq72TIFkYEpMgf0qIM3XF0GDVeMCxn8i0hoh8CGJ+t3bIbbr4ObgYBMaUdyRuXa Y0TS7JNZ62+1985Kv8qDPhSN+wTsoXX5jAX+ArICJGMExKRwbj98OU0bVp8TWV9X y8dfp9+/DaZKKbefXinF2COP5RIZtGbVmxncVCNF2SpQHOAVGS1BKMBKI/2riJ3j vWiBocgwRQCSmoujDwjAOXrR5xQ/WSh7jDk4IJZ2+/DFrP5khAXThTbf6akcmUP+ mgYHVwZyTpX2hOJh/Ub3ZzXoA6FQVSwLF3oH/4KFT0fMynL4p0gwciKHoRMkmy6X FZHj2bSET3K8peh5L6vMomUFpvs+8qoGY6BbfKNerfrpb3XNKwxNQGX4VoSyEwX2 tjw1qwIDAQABo4ICiDCCAoQwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsG AQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBS74WQKHufX ZrLJyIwfzWR0Z/NTXTAfBgNVHSMEGDAWgBSoSmpjBH3duubRObemRWXv86jsoTBv BggrBgEFBQcBAQRjMGEwLgYIKwYBBQUHMAGGImh0dHA6Ly9vY3NwLmludC14My5s ZXRzZW5jcnlwdC5vcmcwLwYIKwYBBQUHMAKGI2h0dHA6Ly9jZXJ0LmludC14My5s ZXRzZW5jcnlwdC5vcmcvMD8GA1UdEQQ4MDaCCW9hZWxkby5jeoIKc2tvbHlqaC5j eoINd3d3Lm9hZWxkby5jeoIOd3d3LnNrb2x5amguY3owTAYDVR0gBEUwQzAIBgZn gQwBAgEwNwYLKwYBBAGC3xMBAQEwKDAmBggrBgEFBQcCARYaaHR0cDovL2Nwcy5s ZXRzZW5jcnlwdC5vcmcwggEDBgorBgEEAdZ5AgQCBIH0BIHxAO8AdgBep3P531bA 57U2SH3QSeAyepGaDIShEhKEGHWWgXFFWAAAAXChKdHFAAAEAwBHMEUCIFr97nlX 86O962dCdaIeEidUe1rYn2w9CXgqveqSX938AiEAkmpC50xsHV4oW6VUPRATk6mA Zk6L3HQBhzCFiJEjoa0AdQAHt1wb5X1o//Gwxh0jFce65ld8V5S3au68YToaadOi HAAAAXChKdHrAAAEAwBGMEQCIF+LlC62WdaDacP4lGXmoPmxPyStOBTTmGGThEvU BovxAiADzJJuqjhMGhSTXQriPBI0j+KYkHHSQtpiJtjcJBsH0zANBgkqhkiG9w0B AQsFAAOCAQEANcLU5CN56N3WV1H4w067f4vFHLSoEzKpT2aeH/NWPSzL2ib57b3S 90MM/bGNnd94wiIUVwU/HR0uUCF6g1hi6kfN7JPiPIqSSNEYVhTXayQAbS/xcslU wFddoD5sozsa2447XuRj9mBcqw/3tyOsxdGXMZrHxxgEaI9wLOCL98ynVKUtpL32 TUftbD1Ky6vW0CLIjw6FF7m4+uxe+EHHKOs4Yam9zeY2Otqmd/evmjrJ8uJbiFry SogP7C3gj0h0oxf8GMECsUMLKwyduyVRzKIqLKuyAxB9hXl/EbhNLU3Cq5KPPL8p hYG0cDsgno8IrVtMetQ8X21S8mB/iCAVqA== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAwN7zfXpV8Q6Wc1QhY5Jb SZrnPJv0QMCvIRqojXRrOE9D01uCiRsT5AZNBnjgeFdHHZTS6lLra4PQI+pJQFlr U76SOS2kSUGHG0hndP4KQZmUQZMI1fHUaxptX5l5aXEKNuSmMCm5XJVlcsxvlsqB qBIZ6+iuWC69YjqrM7Ngm8qZsDm4XRVtV9Y4MupKiSWzPUdUzZNqNZ+10iBkd+1K 0wA7pTitg9L1oTEXP+RdDZRKz1Xoid5mf+Pl7IsQwyxj3cdkTdfXK2+WfMHceBLI BlYH5z+dVJl7PClnea5au9kyBZGBKTIH9KiDN1xdBg1XjAsZ/ItIaIfAhifrd2yG 26+Dm4GATGlHckbl2mNE0uyTWetvtffOSr/Kgz4UjfsE7KF1+YwF/gKyAiRjBMSk cG4/fDlNG1afE1lfV8vHX6ffvw2mSim3n14pxdgjj+USGbRm1ZsZ3FQjRdkqUBzg FRktQSjASiP9q4id471ogaHIMEUAkpqLow8IwDl60ecUP1koe4w5OCCWdvvwxaz+ ZIQF04U23+mpHJlD/poGB1cGck6V9oTiYf1G92c16AOhUFUsCxd6B/+ChU9HzMpy +KdIMHIih6ETJJsulxWR49m0hE9yvKXoeS+rzKJlBab7PvKqBmOgW3yjXq366W91 zSsMTUBl+FaEshMF9rY8NasCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 313446368025051464341386964990902553202757 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-03-03 15:10:37 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-06-01 15:10:37 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'skolyjh.cz' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 786844634766093080966808376282949684966308954062463596020261274095966714857895120391166007860760370995224041406061748536958786404517634596578031580684285635788088132380427209894995625107281386938736490825100815281188652669799375648600251609595739116245036866972433042938850927561048959463991340444092483172949260039435094869722454361952871327126145109926161594372793473659278497138770596537153570601727414193791700555500028316040038904386292567995753023150877621307394633482554664980757513838952121551122879744232715020982328109213391250126262990847284705089187406816085167440250760818143440585922258010763526662118727955860173733164426863634706317915849245378828162468933463503160141567578651948038329794945936827074831087052077932864350274551583337780087510096628775253388673848370849044553109099607521136975022981470371718752279087738840328309511468973582418470822909388862909199830091250003679060306916933247451344486167583397501432107557401585835326465371366202656953877617161409600724701339204146289788270103234094862393583858006978710815571067509116714143187920560571088695554778727888626221379112406394164505545965133673180353139952693088439603746658482308688084266308972948891107275432398864713991727976439987942925969143211 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) bbe1640a1ee7d766b2c9c88c1fcd647467f3535d . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (56 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'oaeldo.cz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'skolyjh.cz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.oaeldo.cz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.skolyjh.cz' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef0076005ea773f9df56c0e7b536487dd049e0327a919a0c84a11212841875968171455800000170a129d1c5000004030047304502205afdee7957f3a3bdeb674275a21e1227547b5ad89f6c3d09782abdea925fddfc022100926a42e74c6c1d5e285ba5543d101393a980664e8bdc7401873085889123a1ad00750007b75c1be57d68fff1b0c61d2315c7bae6577c5794b76aeebc613a1a69d3a21c00000170a129d1eb000004030046304402205f8b942eb659d68369c3f89465e6a0f9b13f24ad3814d3986193844bd4068bf1022003cc926eaa384c1a14935d0ae23c12348fe2989071d242da6226d8dc241b07d3 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 0035c2d4e42379e8ddd65751f8c34ebb7f8bc51cb4a81332a94f669e1ff3563d2ccbda26f9edbdd2f7430cfdb18d9ddf78c2221457053f1d1d2e50217a835862ea47cdec93e23c8a9248d1185614d76b24006d2ff172c954c0575da03e6ca33b1adb8e3b5ee463f6605cab0ff7b723acc5d197319ac7c71804688f702ce08bf7cca754a52da4bdf64d47ed6c3d4acbabd6d022c88f0e8517b9b8faec5ef841c728eb3861a9bdcde6363adaa677f7af9a3ac9f2e25b885af24a880fec2de08f4874a317fc18c102b1430b2b0c9dbb2551cca22a2cabb203107d85797f11b84d2d4dc2ab928f3cbf298581b4703b209e8f08ad5b4c7ad43c5f6d52f2607f882015a8